This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft File: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft (raw, json) Hash identifier: WMQxb0XT8jf8s5SIzZaVl5l+87fYiJEv38V3YuTKoTE= Subject key identifier: 30:1A:C2:DF:18:B8:48:AB:E5:9B:C2:CC:0E:F2:A2:42:A4:D5:91:8C Authority key identifier: BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1 Certificate issuer: /CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1 Certificate serial: 5CA8A9DE5FAFEF2749AD0E1855E4A69937CA5183 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft Manifest number: 0279 Signing time: Mon 01 Dec 2025 05:11:29 +0000 Manifest this update: Mon 01 Dec 2025 05:06:29 +0000 Manifest next update: Thu 04 Dec 2025 15:27:29 +0000 Files and hashes: 1: 3130332e3130352e3139342e302f32342d3234203d3e20313336383738.roa (hash: sGPkr82UUN2m0p5Z6EeIkVlWIj/RwlmetOwmRgGSsB8=) 2: 3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa (hash: CbT0hYzhheMonOPehO3no/mVI5bpvSbduL61mPpJvUQ=) 3: 3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa (hash: O8lklXAV7vvG+v+hANkUO5KIwzG98mC/eIBJJgrAC6Y=) 4: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl (hash: EYen12uVrQd50pqfmUGmDHr5DSKJkCUsUk8+dBzOtto=) 5: 3130332e3130352e3139322e302f32342d3234203d3e20313336383738.roa (hash: w0xMtSXTcSCSqsp69YKeThLLGPMrf9e1AjwvZ9mn/V0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 15:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:a8:a9:de:5f:af:ef:27:49:ad:0e:18:55:e4:a6:99:37:ca:51:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1 Validity Not Before: Dec 1 05:06:29 2025 GMT Not After : Dec 4 15:27:29 2025 GMT Subject: CN=301AC2DF18B848ABE59BC2CC0EF2A242A4D5918C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:9f:78:c6:78:08:05:fd:a1:95:e9:2d:c5:06: 8b:2f:c2:e8:6d:95:d4:52:18:3d:7d:c8:89:8e:29: 6d:ac:55:a7:73:c2:22:57:71:94:73:2b:2f:23:d2: 1e:c4:e3:a0:4e:35:2e:88:4f:e3:e2:48:b0:2c:81: f0:c7:cd:c7:58:b4:7a:37:d8:cd:27:a6:42:45:47: 9d:fe:32:68:93:33:7b:16:de:7a:d2:93:3b:fd:52: 07:06:a4:0e:87:52:7c:0a:13:b0:65:4e:e0:f6:92: 5d:a9:25:22:a4:c8:7e:c2:b8:bf:69:18:13:28:dc: 1a:27:62:50:02:71:54:da:85:38:12:7d:02:69:8b: e6:52:b7:6d:70:9e:6b:8c:41:59:55:b8:1a:7c:e1: d3:fe:a9:39:f5:7d:87:3b:7d:ae:bb:14:01:96:9d: e0:a5:e5:79:9e:0e:53:bd:40:76:2f:53:a1:b7:20: 55:03:59:95:31:8e:5b:c6:95:92:b6:73:0a:d2:0c: eb:b3:d8:9e:81:1c:5f:f3:83:b1:33:cf:18:6e:3e: 6a:c4:42:1d:6d:ca:a9:af:6a:b5:d7:f4:a0:fc:ec: a5:c9:49:27:09:da:d3:55:13:27:b7:a4:7c:60:09: c3:89:d2:86:2e:9e:29:bc:be:cf:4e:9c:36:9f:87: fc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1A:C2:DF:18:B8:48:AB:E5:9B:C2:CC:0E:F2:A2:42:A4:D5:91:8C X509v3 Authority Key Identifier: keyid:BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:46:84:fa:4c:36:16:db:0b:25:94:b4:47:36:e0:47:54:4a: c8:3b:fe:21:e7:69:99:25:aa:69:80:b5:d5:e8:be:b9:70:07: 11:28:62:37:4b:d7:d6:a2:45:6b:47:84:7b:1b:e1:5f:62:d9: 74:c7:4f:cd:0e:3f:a5:ce:e7:ea:09:5e:2a:28:a6:1f:7f:6f: 52:66:dd:66:b8:ca:51:bc:58:bf:db:44:6e:d9:88:ad:3d:37: c2:68:b0:30:0f:23:c7:32:94:c0:9d:b8:51:e2:ca:8a:fb:b2: 69:18:f8:a7:16:32:4b:a1:21:1a:e3:ae:74:55:a8:ea:f0:04: c0:46:b1:4f:e3:5c:66:2f:88:e5:10:1b:bb:5c:1a:0e:35:c2: 67:14:f8:40:25:90:2b:17:06:31:78:d5:3f:8e:3b:7f:bd:2a: 53:1c:35:a7:5c:67:68:46:30:b5:b2:8f:a3:fe:dc:82:c5:2e: 74:a9:00:7b:51:2d:3e:1b:fa:1c:74:90:69:6c:7b:a6:f9:73: ae:ed:b1:ef:00:d5:d4:b8:ee:84:fa:ca:73:9b:20:d3:1b:d9: 50:1b:c0:84:7d:e1:57:0f:17:64:8f:b3:42:ba:de:9b:56:4d: b0:b4:e4:b8:3b:ee:d7:4f:81:8f:68:79:29:36:a9:4e:6a:ec: 29:06:aa:ea -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXKip3l+v7ydJrQ4YVeSmmTfKUYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0 NzQyNDRCMTAeFw0yNTEyMDEwNTA2MjlaFw0yNTEyMDQxNTI3MjlaMDMxMTAvBgNV BAMTKDMwMUFDMkRGMThCODQ4QUJFNTlCQzJDQzBFRjJBMjQyQTRENTkxOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2n3jGeAgF/aGV6S3FBosvwuht ldRSGD19yImOKW2sVadzwiJXcZRzKy8j0h7E46BONS6IT+PiSLAsgfDHzcdYtHo3 2M0npkJFR53+MmiTM3sW3nrSkzv9UgcGpA6HUnwKE7BlTuD2kl2pJSKkyH7CuL9p GBMo3BonYlACcVTahTgSfQJpi+ZSt21wnmuMQVlVuBp84dP+qTn1fYc7fa67FAGW neCl5XmeDlO9QHYvU6G3IFUDWZUxjlvGlZK2cwrSDOuz2J6BHF/zg7EzzxhuPmrE Qh1tyqmvarXX9KD87KXJSScJ2tNVEye3pHxgCcOJ0oYunim8vs9OnDafh/w9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMBrC3xi4SKvlm8LMDvKiQqTVkYwwHwYDVR0j BBgwFoAUvV1Gtb/nLyqhGIqQlrEOAUdCRLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTI0ZmE5YS1lNWYzLTQyNjUtOWUxZC04NGU0NTM1OTYxZDAvMC9CRDVENDZCNUJG RTcyRjJBQTExODhBOTA5NkIxMEUwMTQ3NDI0NEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0NzQy NDRCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDkyNGZhOWEtZTVmMy00MjY1LTll MWQtODRlNDUzNTk2MWQwLzAvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBF MDE0NzQyNDRCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAlGhPpMNhbbCyWUtEc24EdUSsg7/iHnaZkl qmmAtdXovrlwBxEoYjdL19aiRWtHhHsb4V9i2XTHT80OP6XO5+oJXiooph9/b1Jm 3Wa4ylG8WL/bRG7ZiK09N8JosDAPI8cylMCduFHiyor7smkY+KcWMkuhIRrjrnRV qOrwBMBGsU/jXGYviOUQG7tcGg41wmcU+EAlkCsXBjF41T+OO3+9KlMcNadcZ2hG MLWyj6P+3ILFLnSpAHtRLT4b+hx0kGlse6b5c67tse8A1dS47oT6ynObINMb2VAb wIR94VcPF2SPs0K63ptWTbC05Lg77tdPgY9oeSk2qU5q7CkGquo= -----END CERTIFICATE-----Generated at Wed Dec 3 14:13:34 2025 by rpki-client